Package: gawk
Version: 1:3.1.5.dfsg-4
Severity: normal
awk calls TCGETS (tcgetattr) on regular files, which causes all kind of
extra audit errors. For example:
avc: denied { ioctl } for pid=2173 comm="awk" name="master.cf"
dev=hda1 ino=33064 scontext=system_u:system_r:initrc_t
tcontext=system_u:object_r:postfix_etc_t tclass=file
triggered by the postfix init script.
This is completely unnecessary; and I'd prefer awk not doing the ioctl,
instead of adding (potentially dozens of) "dontaudit" rules to the
SELinux policy... Maybe you could stat() first to see if the file
actually is a device node?
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/dash
Kernel: Linux 2.6.17.7
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=UTF-8)
Versions of packages gawk depends on:
ii libc6 2.3.6.ds1-4 GNU C Library: Shared libraries
gawk recommends no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
